Search Preview
curl – SSL peer does not support certificates of the type it received – or how I learned that certificates have a purpose – Worp.one
worp.oneCertificates have a purpose which is determined at creation time. They may not be used for other intentions than what they werer created for... Find some details on how I learned this lesson in this post.
.one > worp.one
SEO audit: Content analysis
Language | Error! No language localisation is found. | ||||||||||||||||||||||||||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
Title | curl – SSL peer does not support certificates of the type it received – or how I learned that certificates have a purpose – Worp.one | ||||||||||||||||||||||||||||||||||||
Text / HTML ratio | 19 % | ||||||||||||||||||||||||||||||||||||
Frame | Excellent! The website does not use iFrame solutions. | ||||||||||||||||||||||||||||||||||||
Flash | Excellent! The website does not have any flash contents. | ||||||||||||||||||||||||||||||||||||
Keywords cloud | certificate SSL certificates peer curl received support type – client Docker NSS myservercom PEM date Jul port mycertpem GMT openssl | ||||||||||||||||||||||||||||||||||||
Keywords consistency |
|
||||||||||||||||||||||||||||||||||||
Headings |
|
||||||||||||||||||||||||||||||||||||
Images | We found 1 images on this web page. |
SEO Keywords (Single)
Keyword | Occurrence | Density |
---|---|---|
certificate | 11 | 0.55 % |
SSL | 9 | 0.45 % |
certificates | 9 | 0.45 % |
peer | 9 | 0.45 % |
curl | 8 | 0.40 % |
received | 7 | 0.35 % |
support | 7 | 0.35 % |
type | 7 | 0.35 % |
– | 7 | 0.35 % |
client | 6 | 0.30 % |
Docker | 6 | 0.30 % |
NSS | 6 | 0.30 % |
myservercom | 4 | 0.20 % |
PEM | 4 | 0.20 % |
date | 4 | 0.20 % |
Jul | 4 | 0.20 % |
port | 4 | 0.20 % |
mycertpem | 4 | 0.20 % |
GMT | 4 | 0.20 % |
openssl | 3 | 0.15 % |
SEO Keywords (Two Word)
Keyword | Occurrence | Density |
---|---|---|
SSL peer | 9 | 0.45 % |
it received | 7 | 0.35 % |
not support | 7 | 0.35 % |
type it | 7 | 0.35 % |
the type | 7 | 0.35 % |
of the | 7 | 0.35 % |
certificates of | 7 | 0.35 % |
support certificates | 7 | 0.35 % |
peer does | 7 | 0.35 % |
does not | 7 | 0.35 % |
client certificate | 5 | 0.25 % |
to myservercom | 4 | 0.20 % |
port 443 | 4 | 0.20 % |
Jul 10 | 4 | 0.20 % |
date Jul | 4 | 0.20 % |
share on | 3 | 0.15 % |
to share | 3 | 0.15 % |
new window | 3 | 0.15 % |
in new | 3 | 0.15 % |
Opens in | 3 | 0.15 % |
SEO Keywords (Three Word)
Keyword | Occurrence | Density | Possible Spam |
---|---|---|---|
type it received | 7 | 0.35 % | No |
does not support | 7 | 0.35 % | No |
the type it | 7 | 0.35 % | No |
of the type | 7 | 0.35 % | No |
certificates of the | 7 | 0.35 % | No |
support certificates of | 7 | 0.35 % | No |
not support certificates | 7 | 0.35 % | No |
SSL peer does | 7 | 0.35 % | No |
peer does not | 7 | 0.35 % | No |
date Jul 10 | 4 | 0.20 % | No |
to share on | 3 | 0.15 % | No |
Opens in new | 3 | 0.15 % | No |
in new window | 3 | 0.15 % | No |
I learned that | 3 | 0.15 % | No |
Click to share | 3 | 0.15 % | No |
– SSL peer | 3 | 0.15 % | No |
curl – SSL | 3 | 0.15 % | No |
certificate verification NSS | 2 | 0.10 % | No |
verification NSS client | 2 | 0.10 % | No |
to myservercom port | 2 | 0.10 % | No |
SEO Keywords (Four Word)
Keyword | Occurrence | Density | Possible Spam |
---|---|---|---|
does not support certificates | 7 | 0.35 % | No |
certificates of the type | 7 | 0.35 % | No |
not support certificates of | 7 | 0.35 % | No |
of the type it | 7 | 0.35 % | No |
peer does not support | 7 | 0.35 % | No |
SSL peer does not | 7 | 0.35 % | No |
the type it received | 7 | 0.35 % | No |
support certificates of the | 7 | 0.35 % | No |
Click to share on | 3 | 0.15 % | No |
curl – SSL peer | 3 | 0.15 % | No |
– SSL peer does | 3 | 0.15 % | No |
Opens in new window | 3 | 0.15 % | No |
certificate verification NSS client | 2 | 0.10 % | No |
peer certificate verification NSS | 2 | 0.10 % | No |
SSL peer certificate verification | 2 | 0.10 % | No |
skipping SSL peer certificate | 2 | 0.10 % | No |
verification NSS client certificate | 2 | 0.10 % | No |
type it received Closing | 2 | 0.10 % | No |
certpath sqletcpkinssdb skipping SSL | 2 | 0.10 % | No |
NSS client certificate from | 2 | 0.10 % | No |
Internal links in - worp.one
About me – Worp.one
worp – Worp.one
Tools – Worp.one
Updates – Worp.one
Git – Worp.one
gitlab – Worp.one
update – Worp.one
upgrade – Worp.one
DevOps – Worp.one
Snippets – Worp.one
docker – Worp.one
networking – Worp.one
Docker: Symlink your log files to stdout and stderr! – Worp.one
Best-Practices – Worp.one
logging – Worp.one
ingress – Worp.one
load balancing – Worp.one
mesh – Worp.one
protocol – Worp.one
proxy – Worp.one
snat – Worp.one
swarm – Worp.one
Docker – Add trusted root ca to local docker-machine swarm – Worp.one
Security – Worp.one
docker-machine – Worp.one
local – Worp.one
Key management during Docker build – Worp.one
key – Worp.one
secrets – Worp.one
Building Docker images of node applications – The npm install issue – Worp.one
node – Worp.one
curl – SSL peer does not support certificates of the type it received – or how I learned that certificates have a purpose – Worp.one
certificate – Worp.one
curl – Worp.one
openssl – Worp.one
ssl – Worp.one
Worp.one – Page 2 – HOME
Atom – Worp.one
backup – Worp.one
Bash – Worp.one
bypass – Worp.one
chrome – Worp.one
clone – Worp.one
cluster – Worp.one
Commandline – Worp.one
Config – Worp.one
Console – Worp.one
fingerprint – Worp.one
Go – Worp.one
Golang – Worp.one
host – Worp.one
Linux – Worp.one
migrate – Worp.one
percona – Worp.one
photon-os – Worp.one
PHP – Worp.one
PHPStorm – Worp.one
PHPUnit – Worp.one
Redis – Worp.one
Review – Worp.one
security – Worp.one
ssh – Worp.one
ssh-agent – Worp.one
Symfony – Worp.one
timezone – Worp.one
Ubuntu – Worp.one
utc – Worp.one
Utility – Worp.one
Vagrant – Worp.one
Vim – Worp.one
Virtual machine – Worp.one
Worp.one Spined HTML
flourish – SSL peer does not support certificates of the type it received – or how I learned that certificates have a purpose – Worp.one Skip to content Main Menu Worp.oneAbout me Search for: flourish – SSL peer does not support certificates of the type it received – or how I learned that certificates have a purpose You are here: Home ➜ DevOps ➜ flourish – SSL peer does not support certificates of the type it received – or how I learned that certificates have a purpose worp on July 26, 2018 I was trying to demonstrate versus anTriggermanwebserver with a vendee document when I encountered this: Shell $ flourish -X POST https://my-server.com/dummy/user -H 'Cache-Control: no-cache' -H 'Content-Type: application/json' -d '{"name_first":"Some", "name_last":"Name"}' --insecure -v -i --key-type PEM --cert-type PEM --cert ./my.cert.pem --key ./my.key.pem * About to connect() to my-server.com port 443 (#0) * Trying 2xx.xx.xx.xxx... * Connected to my-server.com (2xx.xx.xx.xxx) port 443 (#0) * Initializing NSS with certpath: sql:/etc/pki/nssdb * skipping SSL peer document verification * NSS: vendee document from file * subject: CN=my-common-name,OU=IT,O=My Company,L=City,C=Country * start date: Jul 10 07:07:55 2018 GMT * elapse date: Jul 10 07:17:55 2020 GMT * worldwide name: my-common-name * issuer: CN=My-CA,DC=company,DC=local * NSS error -12225 (SSL_ERROR_UNSUPPORTED_CERT_ALERT) * SSL peer does not support certificates of the type it received. * Closing connection 0 curl: (35) SSL peer does not support certificates of the type it received. 12345678910111213141516 $ flourish -X POST https://my-server.com/dummy/user -H 'Cache-Control: no-cache' -H 'Content-Type: application/json' -d '{"name_first":"Some", "name_last":"Name"}' --insecure -v -i --key-type PEM --cert-type PEM --cert ./my.cert.pem --key ./my.key.pem* About to connect() to my-server.com port 443 (#0)* Trying 2xx.xx.xx.xxx...* Connected to my-server.com (2xx.xx.xx.xxx) port 443 (#0)* Initializing NSS with certpath: sql:/etc/pki/nssdb* skipping SSL peer document verification* NSS: vendee document from file* subject: CN=my-common-name,OU=IT,O=My Company,L=City,C=Country* start date: Jul 10 07:07:55 2018 GMT* elapse date: Jul 10 07:17:55 2020 GMT* worldwide name: my-common-name* issuer: CN=My-CA,DC=company,DC=local* NSS error -12225 (SSL_ERROR_UNSUPPORTED_CERT_ALERT)* SSL peer does not support certificates of the type it received.* Closing connection 0curl: (35) SSL peer does not support certificates of the type it received. After posting on serverfault as I was fairly helpless at this point, I learned that Shell $ openssl x509 -in ./my.cert.pem -text -noout 1 $ openssl x509 -in ./my.cert.pem -text -noout on the vendee document will requite me a “key usage” section telling what the document may be used for. In my specimen this was: Shell X509v3 Extended Key Usage: TLS Web Server Authentication 12 X509v3 Extended Key Usage: TLS Web Server Authentication which makes my document a server document and not a vendee certificate. You can find the fully detailed information on serverfault: flourish – SSL peer does not support certificates of the type it received Related Categories: DevOps, Security Tags: apache, certificate, curl, openssl, sslShare this:Click to share on Twitter (Opens in new window)Click to share on Facebook (Opens in new window)Click to share on Google+ (Opens in new window) Post navigation Single file Docker volume created as a directoryBuilding Docker images of node applications – The npm install issue Sidebar Search for: Recent Posts Upgrading Gitlab Docker: TaskNuke remove those worrying orphaned tasks from a network Docker: Symlink your log files to stdout and stderr! Getting original vendee IP from a request in Docker Swarm – Or the issue with issue #25526 Repost: Networking with Docker: Don’t settle for the defaults Recent CommentsArchives November 2018 October 2018 September 2018 August 2018 July 2018 June 2018 May 2018 April 2018 March 2018 February 2018 November 2017 October 2017 September 2017 August 2017 July 2017 June 2017 April 2017 March 2017 February 2017 January 2017 December 2016 Categories Best-Practices DevOps Frameworks My Setups Remember Security shell commands Snippets Thoughts Tools Uncategorized Updates Footer Content Privacy & Cookies: This site uses cookies. To find out more, as well as how to remove or woodcut these, see here: Our Cookie Policy Copyright 2016 by worp.one Proudly powered by WordPress | Theme: Aaron by Carolina